Free Fortinet NSE8_812 Exam Questions

Become Fortinet Certified with updated NSE8_812 exam questions and correct answers

Page: 1 / 22

Total 107 Questions | Updated On: Dec 16, 2025

Add To Cart

Question 1

You are troubleshooting a FortiMail Cloud service integrated with Office 365 where outgoing emails are notreaching the recipients' mail What are two possible reasons for this problem? (Choose two.)

A : The FortiMail access control rule to relay from Office 365 servers FQDN is missing.

B : The FortiMail DKIM key was not set using the Auto Generation option.

C : The FortiMail access control rules to relay from Office 365 servers public IPs are missing.

D : A Mail Flow connector from the Exchange Admin Center has not been set properly to the FortiMail Cloud FQDN.

Answer: C,D

Question 2

Refer to the exhibits, which show a network topology and VPN configuration.A network administrator has been tasked with modifying the existing dial-up IPsec VPN infrastructure to detect the path quality to the remote endpoints. After applying the configuration shown in the configuration exhibit, the VPN clients can still connect and access the protected 172.16.205.0/24 network, but no SLA information shows up for the client tunnels when issuing the diagnose sys link-monitor tunnel all command on the FortiGate CLI. What is wrong with the configuration?

A : SLA link monitoring does not work with the net-device setting.

B : The admin needs to disable the mode-cfg setting.

C : IPsec Phase1 Interface has to be configured in IPsec main mode.

D : It is necessary to use the IKEv2 protocol in this situation.

Answer: A

Question 3

Refer to the exhibit.

The exhibit shows the forensics analysis of an event detected by the FortiEDR core

In this scenario, which statement is correct regarding the threat?

A : is is an exfiltration attack and has been stopped by FortiEDR.

B : is is an exfiltration attack and has not been stopped by FortiEDR

C : is is a ransomware attack and has not been stopped by FortiEDR.

D : is is a ransomware attack and has been stopped by FortiEDR

Answer: D

Question 4

A FortiGate deployment contains the following configuration:

What is the result of this configuration?

A : Route-maps are not configurable in VDOM SERVICES

B : Route-maps for VDOM SERVICES are excluded from HA configuration synchronization

C : Route-maps from VDOM SERVICES are available in all other VDOMs

D : Route-maps from the Root VDOM configuration are available in VDOM SERVICES

Answer: B

Question 5

Refer to the exhibit.

You need to create a base SD-WAN configuration that includes SD-WAN rules and Performance SLAs for spoke sites with various connectivity types. It needs to be done in a way that can be easily applied to new sites with a minimum amount of change.

How should you create the SD-WAN zones?

A : With no members configured

B : With members and assign overlay interfaces

C : With members and assign interfaces but do not specify a gateway

D : With members without interface assignments

Answer: B

Page: 1 / 22

Total 107 Questions | Updated On: Dec 16, 2025

Add To Cart